Valve head Gabe Newell sent out a message today explaining that the breach of Steam's forums this past Sunday goes beyond the message boards and potentially includes Steam account information.

“We learned that intruders obtained access to a Steam database in addition to the forums,” wrote Newell. “This database contained information including user names, hashed and salted passwords, game purchases, email addresses, billing addresses and encrypted credit card information. We do not have evidence that encrypted credit card numbers or personally identifying information were taken by the intruders, or that the protection on credit card numbers or passwords was cracked.”

Valve has yet to find evidence of illegal credit card activity, though they are of course investigating into what exactly was compromised in the breach. Anyone with a Steam account should keep a close eye on their credit cards just in case. It would also be a good idea to change your Steam account and forum passwords (they should be different), as well as double-check that you aren’t using those passwords elsewhere on the Internet.

And just to be safe, you may want to reset which computers can authorize your Steam account. Just head to “Settings” (“Preferences” for Mac users). Find the “Accounts” tab and click on “Manage Steam Guard Account Security”. From there you can deauthorize all computers with access to the account and reauthorize them as you see fit.

Steam is up and running, though the forums remain closed after Sunday’s attack.

No word from Valve on any plans for a giveaway-themed apology. The PlayStation Network outage did set a precedent with Sony "making good" by gifting select titles to its users, so I wouldn’t be surprised to find at least a few games up for grabs after Valve sorts this all out.

Source: PC Gamer